af9f1a89502bfc45c8c8587bc95a8a624b993b06c5701af4291a9cb85bf48e75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af9f1a89502bfc45c8c8587bc95a8a624b993b06c5701af4291a9cb85bf48e75
Size

27KB
MD5

e73b25f1c3a4af7a3b3d01280f5b0747
SHA1

33984a40cd3701569b1c8eab68d7f9ce485c57b0
SHA256

af9f1a89502bfc45c8c8587bc95a8a624b993b06c5701af4291a9cb85bf48e75
SHA512

2d352a0d4baf097c1a9c4fd2008d19582002f0e569fd1a23fcb53d7fa6e55e75c674ed629c9d8926425a527323335d6a40677f8c71c2d6bcc276fa4578596f44
SSDEEP

192:U/OiKpaKag4ybVUzTNPLM4IIL4NqZBmIG1Le33yZDgdZHLTzJxWbh6V+l6PbDv/:UWiKMKV4ybVcRPLMfNXIyMLJy0Voq//

Score

N/A

Malware Config

Signatures

Files

af9f1a89502bfc45c8c8587bc95a8a624b993b06c5701af4291a9cb85bf48e75
.dll windows x86

dfe95b81ec9f210feddfc5253e21ce4a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
DisableThreadLibraryCalls
ExpandEnvironmentStringsA
GetModuleFileNameA
GetProcAddress
LoadLibraryA
MoveFileA
MoveFileExA
WinExec
lstrcmpiA

Exports

Exports

DriverProc
auxMessage
midMessage
modMessage
mxdMessage
widMessage
wodMessage

Sections

.text
Size: 1024B - Virtual size: 914B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 518B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ